Microsoft addresses Zer0-Day vulnerability in Microsoft Office CVE-2015-1641 and according to Microsoft, Exploitation Detected. Windows HTTP protocol stack (HTTP.sys) CVE-2015-1635 is also critical as the attack is simple and leads to remote code execution. Hence we highly recommend to apply these patches as soon as possible.

As mentioned earlier in Microsoft blog in February 2015 to disable SSL 3.0 by default in Internet Explorer 11.

Today Microsoft released an update MS15-032 that disables SSL 3.0 by default in Internet Explorer 11 and also Microsoft recommend to use latest security protocols such as TLS 1.2 in web servers and web applications.